Verify - Code Metrics - Inspection of "Allow to build a PHAR without any configuration (#..." - humbug/box - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Push — master ( 22acbe...a6e730 )

by Théo

created 2018-02-24 15:03 UTC

Verify A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	103
Duplicated Lines	0 %

Importance

Changes

Metric	Value
wmc	9
dl	0
loc	103
rs	10
c	0
b	0
f	0

2 Methods

Rating	Name	Duplication	Size	Complexity
A	configure()	0	23	1
C	execute()	0	66	8

<?php

declare(strict_types=1);

/*
 * This file is part of the box project.
 *
 * (c) Kevin Herrera <[email protected]>
 *     Théo Fidry <[email protected]>
 *
 * This source file is subject to the MIT license that is bundled
 * with this source code in the file LICENSE.
 */

namespace KevinGH\Box\Console\Command;

use Assert\Assertion;
use Phar;
use Symfony\Component\Console\Command\Command;
use Symfony\Component\Console\Input\InputArgument;
use Symfony\Component\Console\Input\InputInterface;
use Symfony\Component\Console\Output\OutputInterface;
use Symfony\Component\Console\Style\SymfonyStyle;
use Throwable;

final class Verify extends Command
{
    private const PHAR_ARG = 'phar';
    private const VERBOSITY_LEVEL = OutputInterface::VERBOSITY_VERBOSE;

    /**
     * {@inheritdoc}
     */
    protected function configure(): void
    {
        $this->setName('verify');
        $this->setDescription('Verifies the PHAR signature');
        $this->setHelp(
            <<<'HELP'
The <info>%command.name%</info> command will verify the signature of the PHAR.

<question>Why would I require that box handle the verification process?</question>

If you meet all of the following conditions:
 - The <comment>openssl</comment> extension is not installed
 - You need to verify a PHAR signed using a private key

Box supports verifying private key signed PHARs without using
either extensions. <error>Note however, that the entire PHAR will need
to be read into memory before the verification can be performed.</error>
HELP
        );
        $this->addArgument(
            self::PHAR_ARG,
            InputArgument::REQUIRED,
            'The PHAR file'
        );
    }

    /**
     * {@inheritdoc}
     */
    protected function execute(InputInterface $input, OutputInterface $output): int
    {
        $io = new SymfonyStyle($input, $output);

        $pharPath = $input->getArgument(self::PHAR_ARG);

        Assertion::file($pharPath);

        $pharPath = false !== realpath($pharPath) ? realpath($pharPath) : $pharPath;

        $io->writeln(
            sprintf(
                'Verifying the PHAR "<comment>%s</comment>"...',
                $pharPath
            ),
            self::VERBOSITY_LEVEL
        );

        try {
            $phar = new Phar($pharPath);

            $verified = true;
            $signature = $phar->getSignature();
        } catch (Throwable $throwable) {
            // Continue

            $verified = false;
            $signature = null;
        }

        if (false === $verified) {
            $message = isset($throwable) && '' !== $throwable->getMessage()
                ? $throwable->getMessage()
                : 'Unknown reason.'
            ;

            $io->writeln(
                sprintf(
                    '<error>The PHAR failed the verification: %s</error>',
                    $message
                )
            );

            if ($output->isVerbose() && isset($throwable)) {
                throw $throwable;
            }

            return 1;
        }

        $io->writeln('<info>The PHAR passed verification.</info>');

        $io->writeln(
            '',
            self::VERBOSITY_LEVEL
        );
        $io->writeln(
            sprintf(
                '%s signature: <info>%s</info>',
                $signature['hash_type'],
                $signature['hash']
            ),
            self::VERBOSITY_LEVEL
        );

        return 0;
    }
}


1			<?php
2
3			declare(strict_types=1);
4
5			/*
6			* This file is part of the box project.
7			*
8			* (c) Kevin Herrera <[email protected]>
9			* Théo Fidry <[email protected]>
10			*
11			* This source file is subject to the MIT license that is bundled
12			* with this source code in the file LICENSE.
13			*/
14
15			namespace KevinGH\Box\Console\Command;
16
17			use Assert\Assertion;
18			use Phar;
19			use Symfony\Component\Console\Command\Command;
20			use Symfony\Component\Console\Input\InputArgument;
21			use Symfony\Component\Console\Input\InputInterface;
22			use Symfony\Component\Console\Output\OutputInterface;
23			use Symfony\Component\Console\Style\SymfonyStyle;
24			use Throwable;
25
26			final class Verify extends Command
27			{
28			private const PHAR_ARG = 'phar';
29			private const VERBOSITY_LEVEL = OutputInterface::VERBOSITY_VERBOSE;
30
31			/**
32			* {@inheritdoc}
33			*/
34			protected function configure(): void
35			{
36			$this->setName('verify');
37			$this->setDescription('Verifies the PHAR signature');
38			$this->setHelp(
39			<<<'HELP'
40			The <info>%command.name%</info> command will verify the signature of the PHAR.
41
42			<question>Why would I require that box handle the verification process?</question>
43
44			If you meet all of the following conditions:
45			- The <comment>openssl</comment> extension is not installed
46			- You need to verify a PHAR signed using a private key
47
48			Box supports verifying private key signed PHARs without using
49			either extensions. <error>Note however, that the entire PHAR will need
50			to be read into memory before the verification can be performed.</error>
51			HELP
52			);
53			$this->addArgument(
54			self::PHAR_ARG,
55			InputArgument::REQUIRED,
56			'The PHAR file'
57			);
58			}
59
60			/**
61			* {@inheritdoc}
62			*/
63			protected function execute(InputInterface $input, OutputInterface $output): int
64			{
65			$io = new SymfonyStyle($input, $output);
66
67			$pharPath = $input->getArgument(self::PHAR_ARG);
68
69			Assertion::file($pharPath);
70
71			$pharPath = false !== realpath($pharPath) ? realpath($pharPath) : $pharPath;
72
73			$io->writeln(
74			sprintf(
75			'Verifying the PHAR "<comment>%s</comment>"...',
76			$pharPath
77			),
78			self::VERBOSITY_LEVEL
79			);
80
81			try {
82			$phar = new Phar($pharPath);
83
84			$verified = true;
85			$signature = $phar->getSignature();
86			} catch (Throwable $throwable) {
87			// Continue
88
89			$verified = false;
90			$signature = null;
91			}
92
93			if (false === $verified) {
94			$message = isset($throwable) && '' !== $throwable->getMessage()
95			? $throwable->getMessage()
96			: 'Unknown reason.'
97			;
98
99			$io->writeln(
100			sprintf(
101			'<error>The PHAR failed the verification: %s</error>',
102			$message
103			)
104			);
105
106			if ($output->isVerbose() && isset($throwable)) {
107			throw $throwable;
108			}
109
110			return 1;
111			}
112
113			$io->writeln('<info>The PHAR passed verification.</info>');
114
115			$io->writeln(
116			'',
117			self::VERBOSITY_LEVEL
118			);
119			$io->writeln(
120			sprintf(
121			'%s signature: <info>%s</info>',
122			$signature['hash_type'],
123			$signature['hash']
124			),
125			self::VERBOSITY_LEVEL
126			);
127
128			return 0;
129			}
130			}
131

humbug / box

Push — master ( 22acbe...a6e730 )

Verify A

Complexity

Size/Duplication

Importance

2 Methods

Duplication Side-by-Side

Filter issues like